$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/MalwVacQ-9PFrPjISQvB0R6qCD0.roa File: MalwVacQ-9PFrPjISQvB0R6qCD0.roa (raw, json) Hash identifier: /jxgiBQ7HYi3+8ZkcUs/EC2NrGd5ldGxd1i/0wWodhk= Subject key identifier: 31:A9:70:55:A7:10:FB:D3:C5:AC:F8:C8:49:0B:C1:D1:1E:AA:08:3D Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0387 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/MalwVacQ-9PFrPjISQvB0R6qCD0.roa Signing time: Tue 30 Apr 2024 02:00:08 +0000 ROA not before: Tue 30 Apr 2024 02:00:08 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:8e00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 02:00:08 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=31A97055A710FBD3C5ACF8C8490BC1D11EAA083D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3e:0a:78:60:cb:68:dd:9e:38:39:6b:7d:2d: bf:b6:dc:93:d7:a5:8e:bd:78:24:7a:bf:59:c8:8f: 4f:c4:23:15:55:b6:21:6e:9b:9c:87:e2:5f:eb:07: de:00:51:31:69:e7:23:53:4b:53:7a:a3:7c:9d:59: 9f:f3:c3:b8:f5:38:54:a1:31:c1:cd:45:14:50:18: 1f:cd:1e:3d:0d:ad:15:ff:49:af:2b:08:60:66:20: b1:0f:4b:41:17:23:20:01:17:c6:0c:c5:d6:18:c0: e2:fd:68:29:c0:98:43:32:76:a9:13:69:a2:5e:21: d9:ab:f0:b3:e3:35:c4:c2:45:dd:ed:0a:04:09:67: 4a:55:f8:35:f7:64:ce:4f:5f:27:2c:4a:a0:17:c7: 32:94:8c:d5:69:95:00:50:7a:e9:5d:c2:d2:eb:a2: 98:5a:07:14:a9:f2:b6:e1:a5:a8:66:6d:68:b0:00: a1:dd:2e:67:fd:0e:ac:79:58:3e:e1:6a:d1:e0:de: c5:40:93:93:c2:66:ea:8d:8e:3b:9d:f9:78:57:55: bd:e8:94:6c:0d:f5:94:3b:5f:b8:de:8e:a0:c5:15: 29:49:44:9e:2b:54:f9:69:1d:66:4d:cf:8f:ff:c2: 51:69:bb:df:a6:0a:ee:b8:71:37:ba:25:48:02:7b: 5f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A9:70:55:A7:10:FB:D3:C5:AC:F8:C8:49:0B:C1:D1:1E:AA:08:3D X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/MalwVacQ-9PFrPjISQvB0R6qCD0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:8e00::/40 Signature Algorithm: sha256WithRSAEncryption 97:45:93:a1:16:ec:64:36:40:69:a0:4e:d4:e2:9f:06:a2:a2: bc:68:26:20:83:64:fb:90:e1:b4:8c:d1:65:90:79:9c:38:4c: 99:61:76:fe:3f:22:06:54:58:2f:8b:cc:d3:47:4f:0d:45:bf: 3d:28:5f:90:1e:5f:cd:28:d1:c9:88:61:81:b4:fc:4e:34:ea: 71:cd:b7:3c:e5:49:dc:37:38:5c:f0:dc:ff:64:73:5d:51:4d: 6a:65:18:06:78:be:46:12:6c:2d:9a:00:22:6a:bc:f4:63:9b: 53:64:d5:fc:9b:25:d2:e0:f1:3b:72:35:8f:8f:ef:38:a8:1b: eb:0a:1b:a4:75:34:cc:31:92:ea:5a:69:fd:07:d1:ad:c8:90: 55:9f:0e:f8:9d:b5:84:91:9a:44:01:6e:5b:ce:d1:95:da:dd: c2:99:cf:87:7d:0c:08:db:b9:a9:68:3e:7a:99:ee:5c:8a:fb: cb:6f:a3:e1:17:8d:4b:65:57:05:54:8a:b6:6a:fa:8d:33:44: c3:41:f8:53:da:b2:78:21:a8:72:11:c6:2a:1d:cd:12:2e:ab: d9:f3:e6:cb:96:02:77:9c:04:59:70:d9:69:c4:42:44:4c:4b: 22:28:60:60:5a:ba:3f:bd:92:8d:d1:1d:41:4d:80:91:90:44: fd:52:9b:d8 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MjAwMDhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMxQTk3MDU1QTcxMEZC RDNDNUFDRjhDODQ5MEJDMUQxMUVBQTA4M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXPgp4YMto3Z44OWt9Lb+23JPXpY69eCR6v1nIj0/EIxVVtiFu m5yH4l/rB94AUTFp5yNTS1N6o3ydWZ/zw7j1OFShMcHNRRRQGB/NHj0NrRX/Sa8r CGBmILEPS0EXIyABF8YMxdYYwOL9aCnAmEMydqkTaaJeIdmr8LPjNcTCRd3tCgQJ Z0pV+DX3ZM5PXycsSqAXxzKUjNVplQBQeuldwtLrophaBxSp8rbhpahmbWiwAKHd Lmf9Dqx5WD7hatHg3sVAk5PCZuqNjjud+XhXVb3olGwN9ZQ7X7jejqDFFSlJRJ4r VPlpHWZNz4//wlFpu9+mCu64cTe6JUgCe1+9AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUMalwVacQ+9PFrPjISQvB0R6qCD0wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9NYWx3VmFjUS05UEZyUGpJU1F2QjBSNnFDRDAu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa44wDQYJKoZIhvcNAQELBQADggEBAJdFk6EW7GQ2QGmgTtTi nwaiorxoJiCDZPuQ4bSM0WWQeZw4TJlhdv4/IgZUWC+LzNNHTw1Fvz0oX5AeX80o 0cmIYYG0/E406nHNtzzlSdw3OFzw3P9kc11RTWplGAZ4vkYSbC2aACJqvPRjm1Nk 1fybJdLg8TtyNY+P7zioG+sKG6R1NMwxkupaaf0H0a3IkFWfDvidtYSRmkQBblvO 0ZXa3cKZz4d9DAjbualoPnqZ7lyK+8tvo+EXjUtlVwVUirZq+o0zRMNB+FPasngh qHIRxiodzRIuq9nz5suWAnecBFlw2WnEQkRMSyIoYGBauj+9ko3RHUFNgJGQRP1S m9g= -----END CERTIFICATE-----Generated at Sun Feb 16 22:08:39 2025 by rpki-client